What is JotForm?

JotForm is a freeonline form builder which helps you create online forms without writing a single line of code.

At JotForm, we want to make sure that you’re getting the online form builder help that you need. Our friendly customer support team is available 24/7.

We believe that if one user has a question, there could be more users who may have the same question. This is why many of our support forum threads are public and available to be searched and viewed. If you’d like help immediately, feel free to search for a similar question, or submit your question or concern.

Why do you not want to answer this thread?(Your answer will be sent to Jeanette and Aytekin)

RSA Security

Asked on September 06, 2012 at 12:11 PM

Dear Team,

Please be advised that it is likely that fraudulent content will not be

visible when accessing the URL below.

Once the victim completes filling out and submitting personal details,

the URL http://submit.myjotform.com/submit/22492423124547/ is used by the fraudster to

send the compromised details to a remote server or email address.

Please find the HTML/Page Source code of the attack attached, in which

the fraudster’s use of this URL can be seen.

Please take the necessary steps in order to disable this fraudulent URL.

Best Regards,

RSA Anti-Fraud Command Center

RSA, The Security Division of EMC

US Phone: +1-866-408-7525

Email: afcc@rsa.com

For more information about RSA's AFCC

http://www.rsa.com/node.aspx?id=3348

Dear Team,

Please be advised that it is likely that fraudulent content will not be

visible when accessing the URL below.

Once the victim completes filling out and submitting personal details,

the URL http://submit.myjotform.com/submit/22492423124547/ is used by

the fraudster to

send the compromised details to a remote server or email address.

Please find the HTML/Page Source code of the attack attached, in which

the fraudster’s use of this URL can be seen.

Please take the necessary steps in order to disable this fraudulent URL.

Best Regards,

RSA Anti-Fraud Command Center

RSA, The Security Division of EMC

US Phone: +1-866-408-7525

Email: afcc@rsa.com

For more information about RSA's AFCC

http://www.rsa.com/node.aspx?id=3348

________________________________

To whom it may concern,

RSA, The Security Division of EMC (“RSA”), an information security

company, has been appointed to assist Standard Bank in preventing or

terminating online activity that targets, or may target Standard Bank’s

clients as potential fraud victims.

RSA has been made aware that your company appears to be providing

internet services to a website, which is making unauthorized use of

Standard Bank’s trademarks. This site

http://submit.myjotform.com/submit/22492423124547/ not only violates

Standard Bank’s copyright, trademarks and other intellectual property

rights, but may also become a host to a phishing attack, or other

fraudulent scams directed against Standard Bank and Standard Bank’s

clients.

The fraudulent website not only represents a misappropriation of

Standard Bank’s intellectual property; its purpose is to mislead

Standard Bank’s clients. Our experience has shown that such sites become

a host of phishing* and other fraudulent scams against our customer’s

account holders.

Please take all necessary steps to immediately shut down the fraudulent

website, terminate its availability on the Internet and discontinue the

transmission of any e-mails associated with this website.

We understand that you may not be aware of this improper use of your

services and we appreciate your cooperation. We specifically ask that

you also take the following actions wherever relevant or possible:

*Please provide us with a tar/zip file of the source code for

this website, so that we may analyze it to help prevent further attacks;

*If any customer data has been captured that is stored on your

systems or equipment, please send us that data so that the customers to

whom that data relates can be notified and take steps to protect their

credit;

We specifically would ask that you also provide a copy of any records

you maintain that indicate the name, contact information, method of

payment or similar information that may be useful in helping learn the

identity and location of the customer for whom the website has been

operated.

The foregoing is without prejudice to any and all of rights and remedies

of any financial institution in connection with this matter, which are

hereby expressly reserved.

RSA is providing this notification to you in the interest of preventing

the proliferation of phishing scams and the information contained herein

is provided to you on an "AS-IS" basis, without representation or

warranty of any kind.

Thank you for your cooperation to prevent and terminate this fraudulent

activity.

If you need further information, please do not hesitate to contact RSA

at the numbers below.

Sincerely,

RSA SECURITY INC.

RSA Anti-Fraud Command Center

Tel: +44 (0)800-032-7751

Tel: +1-866-408-7525

E-mail:afcc@rsa.com

*“Phishing” generally refers to a variety of web based scams that make

use of an illegitimate website which passes itself off as being that of

a targeted financial institution together with associated data

collection points (including web based email accounts) in order to

deceive the account holders of the financial institution into revealing

their personal information, including but not limited to their credit or

debit account numbers, checking account information, social security

numbers, or banking account passwords. Once these account holder

credentials are collected they can then be used to commit wire fraud or